def get_current_roles(): username = login_user.get('username') is_admin = login_user.get('is_admin') role = Role() if is_admin: roles = role.collection.find({}) return jsonify({ 'message': 'ok', 'code': 0, 'data': list(roles), }) user = User() user_info = user.collection.find_one({'username': username}) where = { 'user_id': str(user_info['_id']), } roles = db.collection('user_roles').find(where) roles = list(roles) data = [] if roles: role_ids = map(lambda i: i['role_id'], roles) data = role.find_by_ids(list(role_ids)) return jsonify({ 'message': 'ok', 'code': 0, 'data': data, })
def get_roles(self, team_id): team_roles = self.db.collection('team_roles').find({'team_id': team_id}) team_roles = list(team_roles) if not team_roles: return team_roles role_ids = map(lambda i: i['role_id'], team_roles) role_ids = list(role_ids) return Role.find_by_ids(role_ids)
def add_team(): payload = request.get_json() if not payload: return jsonify({'message': 'invalid params', 'code': 104000}), 400 is_admin = login_user.get('is_admin') if not is_admin: return jsonify({'message': 'admin required', 'code': 104039}), 403 name = payload.get('name') description = payload.get('description') parent = payload.get('parent') role_ids = payload.get('role_ids') members = payload.get('members') or [] master = payload.get('master') or [login_user.get('username')] record = Team.find_one({'name': name}) if record: return jsonify({'message': 'name existed', 'code': 104001}), 400 if role_ids: role_record = Role.find_by_ids(role_ids) if not role_record: return jsonify({'message': 'role not found', 'code': 104041}), 404 data = { 'name': name, 'description': description, 'master': master, 'parent': parent, 'add_by': login_user.get('username'), 'created_at': time.time(), } result = Team.insert_one(data) team_id = str(result.inserted_id) data['_id'] = team_id logger.info('add team', extra={'record': data}) if not role_ids: role = { 'name': name, 'type': 'team', 'role': 'owner', 'add_by': login_user.get('username'), 'created_at': time.time(), } result = Role.insert_one(role) role['_id'] = result.inserted_id role['team_id'] = data['_id'] role_ids = [str(role['_id'])] # team_role = { # 'role_id': result.inserted_id, # 'team_id': role['team_id'], # 'add_by': login_user.get('username'), # 'created_at': time.time(), # } # Model.build_model('team_roles').insert_one(team_role) for role_id in role_ids: team_role = { '$set': { 'team_id': team_id, 'role_id': role_id, 'created_at': time.time() } } where = { 'team_id': team_id, 'role_id': role_id, } db.collection('team_roles').update_one(where, team_role, upsert=True) Team().add_member(team_id, members, owner_id=login_user.get('user_id')) return jsonify({ 'message': 'ok', 'code': 0, })
def add_user(): payload = request.get_json() if not payload: return jsonify({ 'message': 'invalid params', 'code': 104000 }), 400 current_user = login_user.get('username') is_admin = login_user.get('is_admin') username = payload.get('username') nickname = payload.get('nickname') email = payload.get('email') phone = payload.get('phone') role_ids = payload.get('role_ids') team_id = payload.get('team_id') address = payload.get('address') password = payload.get('password') if not username or not email: return jsonify({ 'message': 'miss required params', 'code': 104001, }), 400 if not is_admin: if team_id: team = Team.find_by_id(team_id) if not team or current_user not in team.get('master'): return jsonify({ 'message': 'permission deny', 'code': 104031 }), 403 else: return jsonify({ 'message': 'permission deny', 'code': 104032, }), 403 where = { '$or': [ {'username': username}, {'email': email}, ] } existed = User.find_one(where) if existed: return jsonify({ 'message': 'username or email existed', 'code': 104030 }), 400 password = password or gen_password() encrypt_pwd = generate_password_hash(password) user_info = { 'username': username, 'nickname': nickname, 'password': encrypt_pwd, 'email': email, 'phone': phone, 'active': 0, 'address': address, 'created_at': time.time(), 'add_by': login_user.get('username'), } result = User.insert_one(user_info) user_id = str(result.inserted_id) if role_ids: role_ids = role_ids if type(role_ids) == list else [role_ids] roles = Role.find_by_ids(role_ids) if roles: for item in roles: data = { 'role_id': str(item['_id']), 'user_id': user_id, 'add_by': login_user.get('username'), 'created_at': time.time(), } db.collection('user_roles').insert_one(data) if team_id: Team().add_member(team_id=team_id, members=[user_id], owner_id=login_user.get('user_id')) notify = SMTP() text = ''' <p>Dear user:</p> <p>Your eclogue account is active~!</p> <p>username: {}</p> <p>password: {} </p> ''' text = text.format(username, password) notify.send(text, to=email, subject='', subtype='html') return jsonify({ 'message': 'ok', 'code': 0, 'data': password })